Allow for single grype installation with multiple shared DBs #113

wagoodman · 2023-08-15T00:55:15Z

This PR allows for a single installation of grype share multiple DB and track by the checksum of the DB (or is as oss).

It was noticed while working on this that:

the root yardstick functions (such as compare_results) do not allow for passing an optional store_root as done elsewhere. This option has been added.
some adjustments to logging where done to shorten the output, such as bump some log lines from info to debug ~~and to summarize long tool and image strings intelligently~~ (edit: descoped)
add debug logging when hitting negative cases for capturing a result
note explicitly in logging when a scan configuration is being replaced in a result set
in the files I modified I tried to make the type hint annotations more accurate

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

src/yardstick/tool/syft.py

src/yardstick/tool/grype.py

willmurphyscode · 2023-08-17T13:08:23Z

src/yardstick/store/tool.py

+    store_base = install_base(name=config.tool_name, store_root=store_root)
+
+    version = config.tool_version
+    if config.tool_name.startswith("grype"):


The tool base class knowing about grype is another signal that it might be time to refactor.

one of a hundred signals 🔥

src/yardstick/cli/config.py

src/yardstick/capture.py

willmurphyscode · 2023-08-17T13:40:37Z

src/yardstick/tool/grype.py

            tool_obj.run("db", "update")

        return tool_obj

    @property
    def db_root(self) -> str:
-        return os.path.join(self.path, "db")
+        return os.path.join(self.path, "db", self.db_identity)


So this will just have oss in it for grype installs that are using the normal database?

willmurphyscode · 2023-08-17T13:41:12Z

src/yardstick/store/scan_result.py

@@ -77,7 +77,7 @@ def find(
    by_tool: str = "",
    by_time: str = "",
    by_description: str = "",
-    store_root: str = None,
+    store_root: Optional[str] = None,


nit: I'd prefer if unrelated changes were in a separate PR.

I highlighted that I was upgrading logging and type hints around store_root as found while integrating this into grype-db

I saw that. I just wish it had all been done as a previous PR; that would have made it much easier to review both PRs.

wagoodman · 2023-08-17T14:08:12Z

Let me take another stab at this one. Thanks for the review @willmurphyscode

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

wagoodman added 10 commits August 4, 2023 21:12

support grype install path + manage DBs separately

3c10fb3

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

support grype install path + manage DBs separately

a00baea

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

[wip]

b52d6a1

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

Merge remote-tracking branch 'origin/main' into grype-install-path

72a7394

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

rename new argument to add resolved version to path

5956176

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

add future type annotation to artifact module

01a476f

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

remove type annotations from artifacts

63f4436

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

add optional store root type hint

0c1f6b6

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

fix tests

bb66d3c

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

Merge remote-tracking branch 'origin/main' into grype-install-path

90d8df7

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

wagoodman marked this pull request as ready for review August 16, 2023 16:26

wagoodman marked this pull request as draft August 17, 2023 12:35

Merge remote-tracking branch 'origin/main' into grype-install-path

04b75b9

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

wagoodman marked this pull request as ready for review August 17, 2023 12:52

willmurphyscode reviewed Aug 17, 2023

View reviewed changes

wagoodman added 3 commits August 17, 2023 10:40

remove path updates

19f7ae6

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

remove log lines and summary

9868788

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

swap functool and staticmethod decorators for python 3.9 compat issue

c9a6ece

Signed-off-by: Alex Goodman <wagoodman@users.noreply.github.com>

wagoodman force-pushed the grype-install-path branch from 11cf829 to c9a6ece Compare August 17, 2023 15:16

willmurphyscode approved these changes Aug 17, 2023

View reviewed changes

wagoodman merged commit a7ea334 into main Aug 17, 2023

wagoodman deleted the grype-install-path branch August 17, 2023 15:44

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Allow for single grype installation with multiple shared DBs #113

Allow for single grype installation with multiple shared DBs #113

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Allow for single grype installation with multiple shared DBs #113

Allow for single grype installation with multiple shared DBs #113

Uh oh!

Conversation

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Choose a reason for hiding this comment

Uh oh!

Uh oh!

Uh oh!